SleepWalk: Exploiting Context Switching and Residual Power for Physical Side-Channel Attacks

TL;DR

This paper introduces a novel physical side-channel attack exploiting power spikes during context switches, enabling simpler and effective cryptographic key recovery without complex preprocessing or external triggers.

Contribution

It presents a new side-channel leakage source based on sleep-induced power spikes, extending attack scope beyond register data to residual power signatures.

Findings

Successfully recovered AES cryptographic keys.

Demonstrated attack effectiveness on SIKE implementation.

Validated feasibility on Broadcom BCM2711 hardware.

Abstract

Context switching is utilized by operating systems to change the execution context between application programs. It involves saving and restoring the states of multiple registers and performing a pipeline flush to remove any pre-fetched instructions, leading to a higher instantaneous power consumption compared to typical program execution. In this paper, we introduce a physical power side-channel leakage source that exploits the power spike observed during a context switch, triggered by the inbuilt sleep function of the system kernel. We observed that this power spike directly correlates with both the power consumption during context switching and the residual power consumption of the previously executed program. Notably, the persistence of residual power signatures from previous workloads extends the scope of this side-channel beyond extracting the data in registers during the context switch. Unlike traditional approaches that require analyzing full power traces, applying complex preprocessing, or relying on external synchronization triggers, this novel technique leverages only the amplitude of a single power spike, significantly simplifying the attack. We developed a power model to illustrate the feasibility of mounting end-to-end side-channel attacks using the sleep-induced power spikes. Experimental evaluation demonstrates that our framework can successfully perform cryptographic key recovery for both AES and SIKE implementations on Broadcom BCM2711.